package com.a918.config;

import org.apache.shiro.web.servlet.Cookie;
import org.apache.shiro.web.session.mgt.DefaultWebSessionManager;

/**
 * 可自定义session cookie SameSite
 * 但同时加了secure = true; 需要使用https协议才能传输cookie
 **/
public class ShiroSessionManager extends DefaultWebSessionManager {

    public ShiroSessionManager(){
        super();
//        super.getSessionIdCookie().setSameSite(Cookie.SameSiteOptions.NONE);
//        super.getSessionIdCookie().setHttpOnly(false);
    }

}